cas-parser-node-mcp 1.4.1 → 1.7.1

package/LICENSE

@@ -186,7 +186,7 @@
       same "printed page" as the copyright notice for easier
       identification within third-party archives.
 
-   Copyright 2025 Cas Parser
+   Copyright 2026 Cas Parser
 
    Licensed under the Apache License, Version 2.0 (the "License");
    you may not use this file except in compliance with the License.

package/README.md

@@ -10,6 +10,7 @@ You can run the MCP Server directly via `npx`:
 
 ```sh
 export CAS_PARSER_API_KEY="My API Key"
+export CAS_PARSER_ENVIRONMENT="production"
 npx -y cas-parser-node-mcp@latest
 ```
 
@@ -25,106 +26,55 @@ For clients with a configuration JSON, it might look something like this:
   "mcpServers": {
     "cas_parser_node_api": {
       "command": "npx",
-      "args": ["-y", "cas-parser-node-mcp", "--client=claude", "--tools=all"],
+      "args": ["-y", "cas-parser-node-mcp"],
       "env": {
-        "CAS_PARSER_API_KEY": "My API Key"
+        "CAS_PARSER_API_KEY": "My API Key",
+        "CAS_PARSER_ENVIRONMENT": "production"
       }
     }
   }
 }
 ```
 
-## Exposing endpoints to your MCP Client
+### Cursor
 
-There are two ways to expose endpoints as tools in the MCP server:
+If you use Cursor, you can install the MCP server by using the button below. You will need to set your environment variables
+in Cursor's `mcp.json`, which can be found in Cursor Settings > Tools & MCP > New MCP Server.
 
-1. Exposing one tool per endpoint, and filtering as necessary
-2. Exposing a set of tools to dynamically discover and invoke endpoints from the API
+[![Add to Cursor](https://cursor.com/deeplink/mcp-install-dark.svg)](https://cursor.com/en-US/install-mcp?name=cas-parser-node-mcp&config=eyJuYW1lIjoiY2FzLXBhcnNlci1ub2RlLW1jcCIsInRyYW5zcG9ydCI6Imh0dHAiLCJ1cmwiOiJodHRwczovL2Nhcy1wYXJzZXIuc3RsbWNwLmNvbSIsImhlYWRlcnMiOnsieC1hcGkta2V5IjoiTXkgQVBJIEtleSJ9fQ)
 
-### Filtering endpoints and tools
+### VS Code
 
-You can run the package on the command line to discover and filter the set of tools that are exposed by the
-MCP Server. This can be helpful for large APIs where including all endpoints at once is too much for your AI's
-context window.
+If you use MCP, you can install the MCP server by clicking the link below. You will need to set your environment variables
+in VS Code's `mcp.json`, which can be found via Command Palette > MCP: Open User Configuration.
 
-You can filter by multiple aspects:
+[Open VS Code](https://vscode.stainless.com/mcp/%7B%22name%22%3A%22cas-parser-node-mcp%22%2C%22type%22%3A%22http%22%2C%22url%22%3A%22https%3A%2F%2Fcas-parser.stlmcp.com%22%2C%22headers%22%3A%7B%22x-api-key%22%3A%22My%20API%20Key%22%7D%7D)
 
-- `--tool` includes a specific tool by name
-- `--resource` includes all tools under a specific resource, and can have wildcards, e.g. `my.resource*`
-- `--operation` includes just read (get/list) or just write operations
+### Claude Code
 
-### Dynamic tools
+If you use Claude Code, you can install the MCP server by running the command below in your terminal. You will need to set your
+environment variables in Claude Code's `.claude.json`, which can be found in your home directory.
 
-If you specify `--tools=dynamic` to the MCP server, instead of exposing one tool per endpoint in the API, it will
-expose the following tools:
-
-1. `list_api_endpoints` - Discovers available endpoints, with optional filtering by search query
-2. `get_api_endpoint_schema` - Gets detailed schema information for a specific endpoint
-3. `invoke_api_endpoint` - Executes any endpoint with the appropriate parameters
-
-This allows you to have the full set of API endpoints available to your MCP Client, while not requiring that all
-of their schemas be loaded into context at once. Instead, the LLM will automatically use these tools together to
-search for, look up, and invoke endpoints dynamically. However, due to the indirect nature of the schemas, it
-can struggle to provide the correct properties a bit more than when tools are imported explicitly. Therefore,
-you can opt-in to explicit tools, the dynamic tools, or both.
-
-See more information with `--help`.
-
-All of these command-line options can be repeated, combined together, and have corresponding exclusion versions (e.g. `--no-tool`).
-
-Use `--list` to see the list of available tools, or see below.
-
-### Specifying the MCP Client
-
-Different clients have varying abilities to handle arbitrary tools and schemas.
-
-You can specify the client you are using with the `--client` argument, and the MCP server will automatically
-serve tools and schemas that are more compatible with that client.
-
-- `--client=<type>`: Set all capabilities based on a known MCP client
-
-  - Valid values: `openai-agents`, `claude`, `claude-code`, `cursor`
-  - Example: `--client=cursor`
-
-Additionally, if you have a client not on the above list, or the client has gotten better
-over time, you can manually enable or disable certain capabilities:
-
-- `--capability=<name>`: Specify individual client capabilities
-  - Available capabilities:
-    - `top-level-unions`: Enable support for top-level unions in tool schemas
-    - `valid-json`: Enable JSON string parsing for arguments
-    - `refs`: Enable support for $ref pointers in schemas
-    - `unions`: Enable support for union types (anyOf) in schemas
-    - `formats`: Enable support for format validations in schemas (e.g. date-time, email)
-    - `tool-name-length=N`: Set maximum tool name length to N characters
-  - Example: `--capability=top-level-unions --capability=tool-name-length=40`
-  - Example: `--capability=top-level-unions,tool-name-length=40`
-
-### Examples
-
-1. Filter for read operations on cards:
-
-```bash
---resource=cards --operation=read
 ```
-
-2. Exclude specific tools while including others:
-
-```bash
---resource=cards --no-tool=create_cards
+claude mcp add cas_parser_node_mcp_api --header "x-api-key: My API Key" --transport http https://cas-parser.stlmcp.com
 ```
 
-3. Configure for Cursor client with custom max tool name length:
+## Code Mode
 
-```bash
---client=cursor --capability=tool-name-length=40
-```
+This MCP server is built on the "Code Mode" tool scheme. In this MCP Server,
+your agent will write code against the TypeScript SDK, which will then be executed in an
+isolated sandbox. To accomplish this, the server will expose two tools to your agent:
 
-4. Complex filtering with multiple criteria:
+- The first tool is a docs search tool, which can be used to generically query for
+  documentation about your API/SDK.
 
-```bash
---resource=cards,accounts --operation=read --tag=kyc --no-tool=create_cards
-```
+- The second tool is a code tool, where the agent can write code against the TypeScript SDK.
+  The code will be executed in a sandbox environment without web or filesystem access. Then,
+  anything the code returns or prints will be returned to the agent as the result of the
+  tool call.
+
+Using this scheme, agents are capable of performing very complex tasks deterministically
+and repeatably.
 
 ## Running remotely
 
@@ -149,71 +99,3 @@ A configuration JSON for this server might look like this, assuming the server i
   }
 }
 ```
-
-The command-line arguments for filtering tools and specifying clients can also be used as query parameters in the URL.
-For example, to exclude specific tools while including others, use the URL:
-
-```
-http://localhost:3000?resource=cards&resource=accounts&no_tool=create_cards
-```
-
-Or, to configure for the Cursor client, with a custom max tool name length, use the URL:
-
-```
-http://localhost:3000?client=cursor&capability=tool-name-length%3D40
-```
-
-## Importing the tools and server individually
-
-```js
-// Import the server, generated endpoints, or the init function
-import { server, endpoints, init } from "cas-parser-node-mcp/server";
-
-// import a specific tool
-import camsKfintechCasParser from "cas-parser-node-mcp/tools/cas-parser/cams-kfintech-cas-parser";
-
-// initialize the server and all endpoints
-init({ server, endpoints });
-
-// manually start server
-const transport = new StdioServerTransport();
-await server.connect(transport);
-
-// or initialize your own server with specific tools
-const myServer = new McpServer(...);
-
-// define your own endpoint
-const myCustomEndpoint = {
-  tool: {
-    name: 'my_custom_tool',
-    description: 'My custom tool',
-    inputSchema: zodToJsonSchema(z.object({ a_property: z.string() })),
-  },
-  handler: async (client: client, args: any) => {
-    return { myResponse: 'Hello world!' };
-  })
-};
-
-// initialize the server with your custom endpoints
-init({ server: myServer, endpoints: [camsKfintechCasParser, myCustomEndpoint] });
-```
-
-## Available Tools
-
-The following tools are available in this MCP server.
-
-### Resource `CAS Parser`:
-
-- `cams_kfintech_cas_parser` (`write`): This endpoint specifically parses CAMS/KFintech CAS (Consolidated Account Statement) PDF files and returns data in a unified format.
-  Use this endpoint when you know the PDF is from CAMS or KFintech.
-- `cdsl_cas_parser` (`write`): This endpoint specifically parses CDSL CAS (Consolidated Account Statement) PDF files and returns data in a unified format.
-  Use this endpoint when you know the PDF is from CDSL.
-- `nsdl_cas_parser` (`write`): This endpoint specifically parses NSDL CAS (Consolidated Account Statement) PDF files and returns data in a unified format.
-  Use this endpoint when you know the PDF is from NSDL.
-- `smart_parse_cas_parser` (`write`): This endpoint parses CAS (Consolidated Account Statement) PDF files from NSDL, CDSL, or CAMS/KFintech and returns data in a unified format.
-  It auto-detects the CAS type and transforms the data into a consistent structure regardless of the source.
-
-### Resource `CAS Generator`:
-
-- `generate_cas_cas_generator` (`write`): This endpoint generates CAS (Consolidated Account Statement) documents by submitting a mailback request to the specified CAS authority.
-  Currently only supports KFintech, with plans to support CAMS, CDSL, and NSDL in the future.

package/auth.d.mts

@@ -0,0 +1,4 @@
+import { IncomingMessage } from 'node:http';
+import { ClientOptions } from 'cas-parser-node';
+export declare const parseAuthHeaders: (req: IncomingMessage, required?: boolean) => Partial<ClientOptions>;
+//# sourceMappingURL=auth.d.mts.map

package/auth.d.mts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.d.mts","sourceRoot":"","sources":["src/auth.ts"],"names":[],"mappings":"OAEO,EAAE,eAAe,EAAE,MAAM,WAAW;OACpC,EAAE,aAAa,EAAE,MAAM,iBAAiB;AAE/C,eAAO,MAAM,gBAAgB,GAAI,KAAK,eAAe,EAAE,WAAW,OAAO,KAAG,OAAO,CAAC,aAAa,CAIhG,CAAC"}

package/auth.d.ts

@@ -0,0 +1,4 @@
+import { IncomingMessage } from 'node:http';
+import { ClientOptions } from 'cas-parser-node';
+export declare const parseAuthHeaders: (req: IncomingMessage, required?: boolean) => Partial<ClientOptions>;
+//# sourceMappingURL=auth.d.ts.map

package/auth.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["src/auth.ts"],"names":[],"mappings":"OAEO,EAAE,eAAe,EAAE,MAAM,WAAW;OACpC,EAAE,aAAa,EAAE,MAAM,iBAAiB;AAE/C,eAAO,MAAM,gBAAgB,GAAI,KAAK,eAAe,EAAE,WAAW,OAAO,KAAG,OAAO,CAAC,aAAa,CAIhG,CAAC"}

package/{headers.js → auth.js}

@@ -2,9 +2,9 @@
 // File generated from our OpenAPI spec by Stainless. See CONTRIBUTING.md for details.
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.parseAuthHeaders = void 0;
-const parseAuthHeaders = (req) => {
+const parseAuthHeaders = (req, required) => {
     const apiKey = Array.isArray(req.headers['x-api-key']) ? req.headers['x-api-key'][0] : req.headers['x-api-key'];
     return { apiKey };
 };
 exports.parseAuthHeaders = parseAuthHeaders;
-//# sourceMappingURL=headers.js.map
+//# sourceMappingURL=auth.js.map

package/auth.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.js","sourceRoot":"","sources":["src/auth.ts"],"names":[],"mappings":";AAAA,sFAAsF;;;AAK/E,MAAM,gBAAgB,GAAG,CAAC,GAAoB,EAAE,QAAkB,EAA0B,EAAE;IACnG,MAAM,MAAM,GACV,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,WAAW,CAAC,CAAC;IACnG,OAAO,EAAE,MAAM,EAAE,CAAC;AACpB,CAAC,CAAC;AAJW,QAAA,gBAAgB,oBAI3B"}

package/{headers.mjs → auth.mjs}

@@ -1,6 +1,6 @@
 // File generated from our OpenAPI spec by Stainless. See CONTRIBUTING.md for details.
-export const parseAuthHeaders = (req) => {
+export const parseAuthHeaders = (req, required) => {
     const apiKey = Array.isArray(req.headers['x-api-key']) ? req.headers['x-api-key'][0] : req.headers['x-api-key'];
     return { apiKey };
 };
-//# sourceMappingURL=headers.mjs.map
+//# sourceMappingURL=auth.mjs.map

package/auth.mjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.mjs","sourceRoot":"","sources":["src/auth.ts"],"names":[],"mappings":"AAAA,sFAAsF;AAKtF,MAAM,CAAC,MAAM,gBAAgB,GAAG,CAAC,GAAoB,EAAE,QAAkB,EAA0B,EAAE;IACnG,MAAM,MAAM,GACV,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,WAAW,CAAC,CAAC;IACnG,OAAO,EAAE,MAAM,EAAE,CAAC;AACpB,CAAC,CAAC"}

package/code-tool-types.d.mts

@@ -1,14 +1,14 @@
 import { ClientOptions } from 'cas-parser-node';
 export type WorkerInput = {
-    opts: ClientOptions;
+    project_name: string;
     code: string;
+    client_opts: ClientOptions;
+    intent?: string | undefined;
 };
-export type WorkerSuccess = {
+export type WorkerOutput = {
+    is_error: boolean;
     result: unknown | null;
-    logLines: string[];
-    errLines: string[];
-};
-export type WorkerError = {
-    message: string | undefined;
+    log_lines: string[];
+    err_lines: string[];
 };
 //# sourceMappingURL=code-tool-types.d.mts.map

package/code-tool-types.d.mts.map

@@ -1 +1 @@
-{"version":3,"file":"code-tool-types.d.mts","sourceRoot":"","sources":["src/code-tool-types.ts"],"names":[],"mappings":"OAEO,EAAE,aAAa,EAAE,MAAM,iBAAiB;AAE/C,MAAM,MAAM,WAAW,GAAG;IACxB,IAAI,EAAE,aAAa,CAAC;IACpB,IAAI,EAAE,MAAM,CAAC;CACd,CAAC;AACF,MAAM,MAAM,aAAa,GAAG;IAC1B,MAAM,EAAE,OAAO,GAAG,IAAI,CAAC;IACvB,QAAQ,EAAE,MAAM,EAAE,CAAC;IACnB,QAAQ,EAAE,MAAM,EAAE,CAAC;CACpB,CAAC;AACF,MAAM,MAAM,WAAW,GAAG;IAAE,OAAO,EAAE,MAAM,GAAG,SAAS,CAAA;CAAE,CAAC"}
+{"version":3,"file":"code-tool-types.d.mts","sourceRoot":"","sources":["src/code-tool-types.ts"],"names":[],"mappings":"OAEO,EAAE,aAAa,EAAE,MAAM,iBAAiB;AAE/C,MAAM,MAAM,WAAW,GAAG;IACxB,YAAY,EAAE,MAAM,CAAC;IACrB,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,aAAa,CAAC;IAC3B,MAAM,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;CAC7B,CAAC;AACF,MAAM,MAAM,YAAY,GAAG;IACzB,QAAQ,EAAE,OAAO,CAAC;IAClB,MAAM,EAAE,OAAO,GAAG,IAAI,CAAC;IACvB,SAAS,EAAE,MAAM,EAAE,CAAC;IACpB,SAAS,EAAE,MAAM,EAAE,CAAC;CACrB,CAAC"}

package/code-tool-types.d.ts

@@ -1,14 +1,14 @@
 import { ClientOptions } from 'cas-parser-node';
 export type WorkerInput = {
-    opts: ClientOptions;
+    project_name: string;
     code: string;
+    client_opts: ClientOptions;
+    intent?: string | undefined;
 };
-export type WorkerSuccess = {
+export type WorkerOutput = {
+    is_error: boolean;
     result: unknown | null;
-    logLines: string[];
-    errLines: string[];
-};
-export type WorkerError = {
-    message: string | undefined;
+    log_lines: string[];
+    err_lines: string[];
 };
 //# sourceMappingURL=code-tool-types.d.ts.map

package/code-tool-types.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"code-tool-types.d.ts","sourceRoot":"","sources":["src/code-tool-types.ts"],"names":[],"mappings":"OAEO,EAAE,aAAa,EAAE,MAAM,iBAAiB;AAE/C,MAAM,MAAM,WAAW,GAAG;IACxB,IAAI,EAAE,aAAa,CAAC;IACpB,IAAI,EAAE,MAAM,CAAC;CACd,CAAC;AACF,MAAM,MAAM,aAAa,GAAG;IAC1B,MAAM,EAAE,OAAO,GAAG,IAAI,CAAC;IACvB,QAAQ,EAAE,MAAM,EAAE,CAAC;IACnB,QAAQ,EAAE,MAAM,EAAE,CAAC;CACpB,CAAC;AACF,MAAM,MAAM,WAAW,GAAG;IAAE,OAAO,EAAE,MAAM,GAAG,SAAS,CAAA;CAAE,CAAC"}
+{"version":3,"file":"code-tool-types.d.ts","sourceRoot":"","sources":["src/code-tool-types.ts"],"names":[],"mappings":"OAEO,EAAE,aAAa,EAAE,MAAM,iBAAiB;AAE/C,MAAM,MAAM,WAAW,GAAG;IACxB,YAAY,EAAE,MAAM,CAAC;IACrB,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,aAAa,CAAC;IAC3B,MAAM,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;CAC7B,CAAC;AACF,MAAM,MAAM,YAAY,GAAG;IACzB,QAAQ,EAAE,OAAO,CAAC;IAClB,MAAM,EAAE,OAAO,GAAG,IAAI,CAAC;IACvB,SAAS,EAAE,MAAM,EAAE,CAAC;IACpB,SAAS,EAAE,MAAM,EAAE,CAAC;CACrB,CAAC"}

package/code-tool.d.mts

@@ -1,12 +1,15 @@
-import { Endpoint } from "./tools/types.mjs";
+import { McpTool } from "./types.mjs";
+import { SdkMethod } from "./methods.mjs";
 /**
  * A tool that runs code against a copy of the SDK.
  *
- * Instead of exposing every endpoint as it's own tool, which uses up too many tokens for LLMs to use at once,
+ * Instead of exposing every endpoint as its own tool, which uses up too many tokens for LLMs to use at once,
  * we expose a single tool that can be used to search for endpoints by name, resource, operation, or tag, and then
  * a generic endpoint that can be used to invoke any endpoint with the provided arguments.
  *
  * @param endpoints - The endpoints to include in the list.
  */
-export declare function codeTool(): Promise<Endpoint>;
+export declare function codeTool(params: {
+    blockedMethods: SdkMethod[] | undefined;
+}): McpTool;
 //# sourceMappingURL=code-tool.d.mts.map

package/code-tool.d.mts.map

@@ -1 +1 @@
-{"version":3,"file":"code-tool.d.mts","sourceRoot":"","sources":["src/code-tool.ts"],"names":[],"mappings":"OAKO,EAAE,QAAQ,EAA0B;AAM3C;;;;;;;;GAQG;AACH,wBAAsB,QAAQ,IAAI,OAAO,CAAC,QAAQ,CAAC,CA6HlD"}
+{"version":3,"file":"code-tool.d.mts","sourceRoot":"","sources":["src/code-tool.ts"],"names":[],"mappings":"OAEO,EAAE,OAAO,EAAgE;OAIzE,EAAE,SAAS,EAAE;AAuBpB;;;;;;;;GAQG;AACH,wBAAgB,QAAQ,CAAC,MAAM,EAAE;IAAE,cAAc,EAAE,SAAS,EAAE,GAAG,SAAS,CAAA;CAAE,GAAG,OAAO,CA8FrF"}

package/code-tool.d.ts

@@ -1,12 +1,15 @@
-import { Endpoint } from "./tools/types.js";
+import { McpTool } from "./types.js";
+import { SdkMethod } from "./methods.js";
 /**
  * A tool that runs code against a copy of the SDK.
  *
- * Instead of exposing every endpoint as it's own tool, which uses up too many tokens for LLMs to use at once,
+ * Instead of exposing every endpoint as its own tool, which uses up too many tokens for LLMs to use at once,
  * we expose a single tool that can be used to search for endpoints by name, resource, operation, or tag, and then
  * a generic endpoint that can be used to invoke any endpoint with the provided arguments.
  *
  * @param endpoints - The endpoints to include in the list.
  */
-export declare function codeTool(): Promise<Endpoint>;
+export declare function codeTool(params: {
+    blockedMethods: SdkMethod[] | undefined;
+}): McpTool;
 //# sourceMappingURL=code-tool.d.ts.map

package/code-tool.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"code-tool.d.ts","sourceRoot":"","sources":["src/code-tool.ts"],"names":[],"mappings":"OAKO,EAAE,QAAQ,EAA0B;AAM3C;;;;;;;;GAQG;AACH,wBAAsB,QAAQ,IAAI,OAAO,CAAC,QAAQ,CAAC,CA6HlD"}
+{"version":3,"file":"code-tool.d.ts","sourceRoot":"","sources":["src/code-tool.ts"],"names":[],"mappings":"OAEO,EAAE,OAAO,EAAgE;OAIzE,EAAE,SAAS,EAAE;AAuBpB;;;;;;;;GAQG;AACH,wBAAgB,QAAQ,CAAC,MAAM,EAAE;IAAE,cAAc,EAAE,SAAS,EAAE,GAAG,SAAS,CAAA;CAAE,GAAG,OAAO,CA8FrF"}

package/code-tool.js

@@ -1,156 +1,110 @@
 "use strict";
 // File generated from our OpenAPI spec by Stainless. See CONTRIBUTING.md for details.
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    var desc = Object.getOwnPropertyDescriptor(m, k);
-    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
-      desc = { enumerable: true, get: function() { return m[k]; } };
-    }
-    Object.defineProperty(o, k2, desc);
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
-    Object.defineProperty(o, "default", { enumerable: true, value: v });
-}) : function(o, v) {
-    o["default"] = v;
-});
-var __importStar = (this && this.__importStar) || (function () {
-    var ownKeys = function(o) {
-        ownKeys = Object.getOwnPropertyNames || function (o) {
-            var ar = [];
-            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
-            return ar;
-        };
-        return ownKeys(o);
-    };
-    return function (mod) {
-        if (mod && mod.__esModule) return mod;
-        var result = {};
-        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
-        __setModuleDefault(result, mod);
-        return result;
-    };
-})();
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.codeTool = codeTool;
-const node_path_1 = require("node:path");
-const node_url_1 = require("node:url");
+const types_1 = require("./types.js");
+const util_1 = require("./util.js");
+const prompt = `Runs JavaScript code to interact with the Cas Parser API.
+
+You are a skilled programmer writing code to interface with the service.
+Define an async function named "run" that takes a single parameter of an initialized SDK client and it will be run.
+For example:
+
+\`\`\`
+async function run(client) {
+  const response = await client.credits.check();
+
+  console.log(response.enabled_features);
+}
+\`\`\`
+
+You will be returned anything that your function returns, plus the results of any console.log statements.
+Do not add try-catch blocks for single API calls. The tool will handle errors for you.
+Do not add comments unless necessary for generating better code.
+Code will run in a container, and cannot interact with the network outside of the given SDK client.
+Variables will not persist between calls, so make sure to return or log any data you might need later.`;
 /**
  * A tool that runs code against a copy of the SDK.
  *
- * Instead of exposing every endpoint as it's own tool, which uses up too many tokens for LLMs to use at once,
+ * Instead of exposing every endpoint as its own tool, which uses up too many tokens for LLMs to use at once,
  * we expose a single tool that can be used to search for endpoints by name, resource, operation, or tag, and then
  * a generic endpoint that can be used to invoke any endpoint with the provided arguments.
  *
  * @param endpoints - The endpoints to include in the list.
  */
-async function codeTool() {
+function codeTool(params) {
     const metadata = { resource: 'all', operation: 'write', tags: [] };
     const tool = {
         name: 'execute',
-        description: 'Runs Typescript code to interact with the API.\nYou are a skilled programmer writing code to interface with the service.\nDefine an async function named "run" that takes a single parameter of an initialized client, and it will be run.\nDo not initialize a client, but instead use the client that you are given as a parameter.\nYou will be returned anything that your function returns, plus the results of any console.log statements.\nIf any code triggers an error, the tool will return an error response, so you do not need to add error handling unless you want to output something more helpful than the raw error.\nIt is not necessary to add comments to code, unless by adding those comments you believe that you can generate better code.\nThis code will run in a container, and you will not be able to use fetch or otherwise interact with the network calls other than through the client you are given.\nAny variables you define won\'t live between successive uses of this call, so make sure to return or log any data you might need later.',
-        inputSchema: { type: 'object', properties: { code: { type: 'string' } } },
+        description: prompt,
+        inputSchema: {
+            type: 'object',
+            properties: {
+                code: {
+                    type: 'string',
+                    description: 'Code to execute.',
+                },
+                intent: {
+                    type: 'string',
+                    description: 'Task you are trying to perform. Used for improving the service.',
+                },
+            },
+            required: ['code'],
+        },
     };
-    // Import dynamically to avoid failing at import time in cases where the environment is not well-supported.
-    const { newDenoHTTPWorker } = await Promise.resolve().then(() => __importStar(require('@valtown/deno-http-worker')));
-    const { workerPath } = await Promise.resolve().then(() => __importStar(require('./code-tool-paths.cjs')));
     const handler = async (client, args) => {
-        const baseURLHostname = new URL(client.baseURL).hostname;
-        const { code } = args;
-        const worker = await newDenoHTTPWorker((0, node_url_1.pathToFileURL)(workerPath), {
-            runFlags: [
-                `--node-modules-dir=manual`,
-                `--allow-read=code-tool-worker.mjs,${workerPath.replace(/([\/\\]node_modules)[\/\\].+$/, '$1')}/`,
-                `--allow-net=${baseURLHostname}`,
-                // Allow environment variables because instantiating the client will try to read from them,
-                // even though they are not set.
-                '--allow-env',
-            ],
-            printOutput: true,
-            spawnOptions: {
-                cwd: (0, node_path_1.dirname)(workerPath),
-            },
-        });
-        try {
-            const resp = await new Promise((resolve, reject) => {
-                worker.addEventListener('exit', (exitCode) => {
-                    reject(new Error(`Worker exited with code ${exitCode}`));
-                });
-                const opts = {
-                    baseURL: client.baseURL,
-                    apiKey: client.apiKey,
-                    defaultHeaders: {
-                        'X-Stainless-MCP': 'true',
-                    },
-                };
-                const req = worker.request('http://localhost', {
-                    headers: {
-                        'content-type': 'application/json',
-                    },
-                    method: 'POST',
-                }, (resp) => {
-                    const body = [];
-                    resp.on('error', (err) => {
-                        reject(err);
-                    });
-                    resp.on('data', (chunk) => {
-                        body.push(chunk);
-                    });
-                    resp.on('end', () => {
-                        resolve(new Response(Buffer.concat(body).toString(), {
-                            status: resp.statusCode ?? 200,
-                            headers: resp.headers,
-                        }));
-                    });
-                });
-                const body = JSON.stringify({
-                    opts,
-                    code,
-                });
-                req.write(body, (err) => {
-                    if (err !== null && err !== undefined) {
-                        reject(err);
-                    }
-                });
-                req.end();
-            });
-            if (resp.status === 200) {
-                const { result, logLines, errLines } = (await resp.json());
-                const returnOutput = result === null ? null
-                    : result === undefined ? null
-                        : {
-                            type: 'text',
-                            text: typeof result === 'string' ? result : JSON.stringify(result),
-                        };
-                const logOutput = logLines.length === 0 ?
-                    null
-                    : {
-                        type: 'text',
-                        text: logLines.join('\n'),
-                    };
-                const errOutput = errLines.length === 0 ?
-                    null
-                    : {
-                        type: 'text',
-                        text: 'Error output:\n' + errLines.join('\n'),
-                    };
-                return {
-                    content: [returnOutput, logOutput, errOutput].filter((block) => block !== null),
-                };
-            }
-            else {
-                const { message } = (await resp.json());
-                throw new Error(message);
+        const code = args.code;
+        const intent = args.intent;
+        // Do very basic blocking of code that includes forbidden method names.
+        //
+        // WARNING: This is not secure against obfuscation and other evasion methods. If
+        // stronger security blocks are required, then these should be enforced in the downstream
+        // API (e.g., by having users call the MCP server with API keys with limited permissions).
+        if (params.blockedMethods) {
+            const blockedMatches = params.blockedMethods.filter((method) => code.includes(method.fullyQualifiedName));
+            if (blockedMatches.length > 0) {
+                return (0, types_1.asErrorResult)(`The following methods have been blocked by the MCP server and cannot be used in code execution: ${blockedMatches
+                    .map((m) => m.fullyQualifiedName)
+                    .join(', ')}`);
             }
         }
-        catch (e) {
-            throw e;
+        // this is not required, but passing a Stainless API key for the matching project_name
+        // will allow you to run code-mode queries against non-published versions of your SDK.
+        const stainlessAPIKey = (0, util_1.readEnv)('STAINLESS_API_KEY');
+        const codeModeEndpoint = (0, util_1.readEnv)('CODE_MODE_ENDPOINT_URL') ?? 'https://api.stainless.com/api/ai/code-tool';
+        const res = await fetch(codeModeEndpoint, {
+            method: 'POST',
+            headers: {
+                ...(stainlessAPIKey && { Authorization: stainlessAPIKey }),
+                'Content-Type': 'application/json',
+                client_envs: JSON.stringify({
+                    CAS_PARSER_API_KEY: (0, util_1.requireValue)((0, util_1.readEnv)('CAS_PARSER_API_KEY') ?? client.apiKey, 'set CAS_PARSER_API_KEY environment variable or provide apiKey client option'),
+                    CAS_PARSER_BASE_URL: (0, util_1.readEnv)('CAS_PARSER_BASE_URL') ?? (0, util_1.readEnv)('CAS_PARSER_ENVIRONMENT') ?
+                        undefined
+                        : client.baseURL ?? undefined,
+                }),
+            },
+            body: JSON.stringify({
+                project_name: 'cas-parser',
+                code,
+                intent,
+                client_opts: { environment: ((0, util_1.readEnv)('CAS_PARSER_ENVIRONMENT') || undefined) },
+            }),
+        });
+        if (!res.ok) {
+            throw new Error(`${res.status}: ${res.statusText} error when trying to contact Code Tool server. Details: ${await res.text()}`);
         }
-        finally {
-            worker.terminate();
+        const { is_error, result, log_lines, err_lines } = (await res.json());
+        const hasLogs = log_lines.length > 0 || err_lines.length > 0;
+        const output = {
+            result,
+            ...(log_lines.length > 0 && { log_lines }),
+            ...(err_lines.length > 0 && { err_lines }),
+        };
+        if (is_error) {
+            return (0, types_1.asErrorResult)(typeof result === 'string' && !hasLogs ? result : JSON.stringify(output, null, 2));
         }
+        return (0, types_1.asTextContentResult)(output);
     };
     return { metadata, tool, handler };
 }